Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft
File: 5vEsD995brDfK2AuWsQsy4OyLhg.mft (raw, json)
Hash identifier: 7G1VDpinA+Mnk/CPWXNYp7DaRaEOs2Vvp6q1tbGftpU=
Subject key identifier: 54:83:BD:81:7F:24:2A:86:26:8E:B4:22:03:3A:73:D0:07:35:60:D7
Authority key identifier: E6:F1:2C:0F:DF:79:6E:B0:DF:2B:60:2E:5A:C4:2C:CB:83:B2:2E:18
Certificate issuer: /CN=A914E3B7/serialNumber=E6F12C0FDF796EB0DF2B602E5AC42CCB83B22E18
Certificate serial: 3462
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft
Manifest number: 345F
Signing time: Fri 28 Mar 2025 15:15:27 +0000
Manifest this update: Fri 28 Mar 2025 15:15:27 +0000
Manifest next update: Fri 04 Apr 2025 15:15:27 +0000
Files and hashes: 1: 5vEsD995brDfK2AuWsQsy4OyLhg.crl (hash: iHe5AjftXmxHVb8v351XgZJHvBxigaU7uFDuzbnODSs=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13410 (0x3462)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914E3B7
Validity
Not Before: Mar 28 15:15:27 2025 GMT
Not After : Apr 4 15:15:27 2025 GMT
Subject: CN=67e6bd0f-a0f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e5:61:e1:e5:3d:7a:da:06:73:29:d3:72:43:
e3:03:0b:41:34:26:a3:c3:67:96:6c:32:bb:e7:b2:
b4:4d:c4:8f:21:e7:4b:1f:fa:ef:5f:db:47:aa:ca:
9e:11:97:fb:48:b5:6d:98:e0:97:92:79:19:76:bb:
db:1c:9e:5d:a7:bf:d3:10:88:fa:9e:e3:0c:a0:22:
71:39:c0:9e:ab:7a:f1:41:47:e0:e8:1c:08:c6:84:
fb:88:7a:ba:1e:0c:10:62:69:c2:56:db:22:09:e5:
77:84:89:29:51:c6:01:80:ab:5c:da:46:fe:69:a9:
70:7e:fe:14:4c:e9:1c:43:9b:9b:e2:19:4a:4b:7c:
f1:11:a7:62:21:cb:2e:c0:42:60:25:bf:12:61:d7:
d1:ee:05:63:7a:6e:f1:c5:f6:7e:e4:a2:43:c8:77:
33:d4:ff:4b:e0:c4:28:7e:f6:07:1c:59:bd:0f:00:
fe:45:69:87:a6:76:c2:05:81:b1:0d:4d:60:28:f2:
94:e2:cb:d7:07:ec:2b:14:74:15:16:45:c3:db:a2:
25:7b:85:f9:ab:8e:30:e0:dc:57:92:f1:1c:3c:79:
86:ab:92:6f:af:65:3e:41:c9:4a:cb:de:09:60:7a:
52:8f:c4:55:85:89:7b:9b:3a:ca:fc:dd:be:0f:7e:
d9:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:83:BD:81:7F:24:2A:86:26:8E:B4:22:03:3A:73:D0:07:35:60:D7
X509v3 Authority Key Identifier:
keyid:E6:F1:2C:0F:DF:79:6E:B0:DF:2B:60:2E:5A:C4:2C:CB:83:B2:2E:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a8:29:82:e6:cf:3e:7a:2c:98:7a:d9:40:ce:eb:1b:f0:ef:55:
67:bd:41:41:b7:47:b6:8f:b7:4c:41:6d:63:e7:36:75:2e:74:
83:24:b9:57:aa:b3:9f:e0:01:2c:b2:bd:87:44:09:02:89:3f:
97:e0:1e:38:98:f4:50:55:af:d2:9e:6c:3a:38:54:71:6c:84:
1d:d6:d0:05:79:2f:1e:59:9b:63:d1:2f:de:99:21:c5:7b:3f:
ca:9f:90:51:19:8a:bc:13:11:d4:c9:e8:30:54:70:3a:8b:ab:
02:bb:63:68:96:6d:8f:40:93:94:b8:11:12:5a:0a:d2:09:51:
20:c8:2f:12:2b:ba:bf:ec:c3:e0:d9:29:dc:33:bb:30:d0:15:
95:cc:7b:6d:db:50:9c:c9:7c:b6:b8:a2:02:47:cd:ef:58:e1:
a9:79:73:82:61:34:53:68:ed:06:6b:c1:a7:b8:cc:4b:80:9a:
d9:58:29:66:1c:69:c5:3b:bb:81:17:16:4b:6f:00:77:64:14:
d7:1a:39:66:f3:55:6c:90:69:f9:b9:eb:a2:da:15:f2:c9:84:
7f:ad:9f:94:c6:cd:88:3d:4c:96:d6:65:8c:92:88:e1:55:a1:
2d:64:cf:40:d6:04:d9:8d:06:42:d6:3b:e7:27:a2:d7:6a:50:
df:07:e2:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:13:42 2025 by rpki-client